Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
HTML injection in NICE Chat
Vulnerability Description
HTML injection vulnerability in NICE Chat. This vulnerability allows an attacker to inject and render arbitrary HTML content in email transcripts by modifying the 'firstName' and 'lastName' parameters during a chat session. The injected HTML is included in the body of the email sent by the system, which could enable phishing attacks, impersonation, or credential theft.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
NICE Chat 跨站脚本漏洞
Vulnerability Description
NICE Chat是NICE Chat公司的一个网页聊天工具。 NICE Chat存在跨站脚本漏洞,该漏洞源于HTML注入,可能导致钓鱼攻击、身份冒充或凭据窃取。
CVSS Information
N/A
Vulnerability Type
N/A